CN102469087A - Method and system for realizing control of quality of service, - Google Patents
Method and system for realizing control of quality of service, Download PDFInfo
- Publication number
- CN102469087A CN102469087A CN2010105476317A CN201010547631A CN102469087A CN 102469087 A CN102469087 A CN 102469087A CN 2010105476317 A CN2010105476317 A CN 2010105476317A CN 201010547631 A CN201010547631 A CN 201010547631A CN 102469087 A CN102469087 A CN 102469087A
- Authority
- CN
- China
- Prior art keywords
- network element
- information
- qos
- segw
- henb
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W28/00—Network traffic management; Network resource management
- H04W28/16—Central resource management; Negotiation of resources or communication parameters, e.g. negotiating bandwidth or QoS [Quality of Service]
- H04W28/24—Negotiating SLA [Service Level Agreement]; Negotiating QoS [Quality of Service]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W84/00—Network topologies
- H04W84/02—Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
- H04W84/04—Large scale networks; Deep hierarchical networks
- H04W84/042—Public Land Mobile systems, e.g. cellular systems
- H04W84/045—Public Land Mobile systems, e.g. cellular systems using private Base Stations, e.g. femto Base Stations, home Node B
Landscapes
- Engineering & Computer Science (AREA)
- Quality & Reliability (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a method and a system for realizing control of quality of service, wherein the method comprises the following steps that: SeGW reports corresponding relation information between IPsec tunnel information and IP (Internet Protocol) data stream information in the descending direction to a fixed-network element by a second network element; the SeGW or a first network element reports corresponding relation information between IPsec tunnel information and IP data stream information in the ascending direction by the second network element to the fixed-network element by a second network element; and QoS (Quality of Service) control is controlled by the fixed-network element. In the invention, the condition that the QoS separation is realized for different services when a terminal is accessed from a HeNB/HNB (Home Enhanced Node/Home Node B) can be ensured, the QoS requirement of the services with high QoS requirement is preferably met, and the user experience is improved.
Description
Technical field
The present invention relates to wireless communication field, relate in particular to a kind of realization service quality (Quality of Service, QoS) method and system of control.
Background technology
Third generation partner program (3rd Generation Partnership Project; The grouping system of evolution 3GPP) (Evolved Packet System; EPS) by Universal Terrestrial Radio Access Network (the Evolved Universal Terrestrial Radio Access Network of evolution; E-UTRAN), mobile management unit (Mobility Management Entity, MME), gateway (Serving Gateway, S-GW), grouped data network gateway (Packet Data Network Gateway; P-GW), (Home Subscriber Server HSS) forms home subscriber server.
Fig. 1 is according to (the Home evolved NodeB of the evolution Home eNodeB under the non-roaming scene of correlation technique; HeNB) configuration diagram of access EPS; As shown in Figure 1; MME is connected with EUTRAN, S-GW and femto gateway (HeNB GW), the related work of chains of command such as the processing of responsible mobile management, Non-Access Stratum signaling and the contextual management of user's mobile management; S-GW is the accessing gateway equipment that links to each other with E-UTRAN, between E-UTRAN and P-GW, transmits data, and is responsible for pending datas such as paging are carried out buffer memory; P-GW then is that (Packet Data Network, the PDN) borde gateway of network are responsible for the access of PDN and between EPS and PDN, are transmitted function such as data for EPS and packet data network.
The control if EPS system support policy charges (Policy and Charging Control, PCC), "Policy and Charging Rules Function (Policy and Charging Rules Function then; PCRF) carry out the strategy and the formulation of charging regulation; It through interface Rx and carrier network agreement (Internet Protocol, IP) application function in the business network (Application Function, AF) continuous; Obtain business information, be used to generate the business information of PCC strategy.S5 interface between S-GW and P-GW adopt GPRS Tunnel Protocol (GPRS tunnel Protocol, GTP) during agreement, resident strategy and charge execution function (Policy and Charging Enforcement Function among the P-GW; PCEF); Through Gx interface exchange message, be responsible for initiating foundation, modification and the release of carrying between PCRF and P-GW, guarantee service quality (the Quality of Service of business datum; And the control of chargeing QoS).When the S5 of S-GW and P-GW interface adopts proxy-mobile IP (Proxy Mobile IP; PMIP) time, and resident bearing binding and event reporting function among the S-GW (Bearer Binding and Event Report Function, BBERF); And pass through Gxc interface exchange message between S-GW and the PCRF; Be responsible for foundation, modification and the release initiating to carry by BBERF, guarantee the service quality of business datum, by the PCEF control of chargeing.
In the existing EPS system; P-GW (perhaps other network elements, like S-GW) has the bearing binding function, when carrying out bearing binding; Be that five-tuple (source address, destination address, source port number, destination slogan, protocol number) with packet is to TFT (Traffic Flow Template; Traffic flow template) coupling, the PF (packet Filter, packet filtering) that forms TFT has set up corresponding relation with different carryings.When the five-tuple of packet mated with certain PF, then this packet was placed in the corresponding carrying and transmits.
EPS supports the access of HeNB, and HeNB is a kind of small-sized, lower powered base station, is deployed in indoor places such as family, office and enterprise building.(Closed Subscriber Group is to introduce the notion that proposes behind the Home eNodeB CSG) to closed user group.Usually the user of an one family or an enterprises forms a closed user group, and this closed user group identifies with CSG ID.The Home eNodeB of serving for user in this closed user group has identical CSG ID.When a closed user group during only by the one family base station services, this closed user group also can directly adopt Home eNodeB sign (for example BS ID) to identify.According to the gerentocratic wish of Home eNodeB, CSG user and/or non-CSG user can distinguish different grade, and the priority difference is the service priority of its enjoyment then, and enjoying service quality can be different with class of service.The user can be linked into the pairing Home eNodeB of a plurality of closed user group through contracting with operator, for example, and user's office space, family etc.Therefore introduced the notion that allows the closed user Groups List.This tabulation is kept in user's the user data server of terminal and network side.
The use pattern of Home eNodeB is divided into three kinds: closed mode, mixed mode and open mode.When the family base station is closed mode, have only the affiliated CSG contracted user of this Home eNodeB can insert this base station and enjoy the business that the base station provides; When the family base station was open mode, any contracted user of operator can insert this base station, and the Home eNodeB of this moment is equal to macro base station to be used; When the family base station is mixed mode; Same any contracted user of operator of permission or roamer insert use; But will be according to user's different rank of data separation of signatory CSG whether; The user who that is to say signatory this CSG has higher service priority when using the mixed type Home eNodeB, enjoy better service quality and class of service.
HeNB inserts the core net (as shown in Figure 1) of EPS usually through the fixed network circuit of renting; In order to ensure the safety of access; Introduce security gateway (Security Gateway in the core net; SeGW) shield, the data between HeNB and the SeGW will adopt Internet Protocol Security, and (IP Security, IPSec) mechanism encapsulates.HeNB is connected to the MME and the S-GW of core net; Perhaps (HeNB GW is an optional network element through HeNB GW; Whether adopt network design based on operator) be connected to MME and S-GW, pass through the ipsec tunnel between HeNB and the SeGW in the middle of control signaling or the user data.
In addition, UMTS (Universal Mobile Telecommunications System, UMTS) access of support Home eNodeB HNB (Home NodeB).Fig. 2 is the configuration diagram that inserts UMTS according to the HNB under the non-roaming scene of correlation technique; Framework among Fig. 2 and the framework of Fig. 1 are similar; Different is; Use service universal packet wireless business affair support node (Serving General Packet Radio Service Support Node; SGSN) replaced MME and S-GW, (Gateway General Packet Radio Service Supporting Node GGSN) has replaced P-GW to use ggsn.
In the current HeNB/HNB system; Introduced HeNB/HNB PF (Policy Function; Policing feature) network element, its function are control signaling and the relative strategies that transmission policy is consulted in the HeNB/HNB of 3GPP system and fixed network system, and formulate some strategic decision-making.Current function to HeNB/HNB PF self, with the information interaction mechanism of other network elements etc., two kinds of parallel architectural schemes are arranged, these two kinds of schemes specifically describe as follows:
Framework one (among Fig. 1 Fig. 2, when having only T1, T2 interface): T1-T2 scheme
In this scheme, between SeGW and HeNB/HNB PF, be provided with interface T1, between HeNB/HNB and HeNB/HNB PF, be provided with interface T2.
The T1 interface is used for when HeNB/HNB powers on, to the relevant HeNB/HNB system message of HeNB/HNB PF and fixed network transmission, and the address of HeNB/HNB for example, information such as HeNB/HNB sign are used for the associating policy session and locate HeNB/HNB in the position of fixed network etc.The T2 interface is used for HeNB/HNB to HeNB/HNB PF and relevant policy conferring control signaling and the relative strategy of fixed network transmission, and the user data on the HeNB/HNB is realized QoS control etc.
Framework two (among Fig. 1 Fig. 2, when having only T1, T3 interface): T1-T3 scheme
In this scheme, between SeGW and HeNB/HNB PF, be provided with interface T1, between HeNB/HNB GW/MME and HeNB/HNB PF, be provided with interface T3.
The T1 interface is used for when HeNB/HNB powers on, to the relevant HeNB/HNB system message of HeNB/HNB PF and fixed network transmission, and the address of HeNB/HNB for example, information such as HeNB/HNB sign are used for the associating policy session and locate HeNB/HNB in the position of fixed network etc.The T3 interface is used for HeNB/HNB GW/MME to HeNB/HNB PF and relevant policy conferring control signaling and the relative strategy of fixed network transmission, and the user data on the HeNB/HNB is realized QoS control etc.
When current network HeNB/HNB inserts, there is following problem aspect the QoS control.Insert under the scene of core net through HeNB/HNB the user; Because the QoS of the fixed network circuit that HeNB/HNB inserts normally receives owner and the fixed network operator's of HeNB/HNB signatory restriction; User service data is through after the IPsec tunnel encapsulation during again by the fixed network link transmission, and can fixed network guarantee that the QoS of business datum depends on the fixed network resource situation fully.All terminals of the same HeNB/HNB of current access, that all PDN connect, all data services (for example various data service such as voice, video) all are to transmit through same ipsec tunnel, can't be that it guarantees QoS that it needs to its characteristic just to different service like this.Particularly under the insufficient situation of fixed network resource,, caused can't carry out even fail to the high business of qos requirement if do not have QoS to distinguish to inhomogeneous business.For instance: one type of BE (Best Effort such as data download; Do one's best) business be not very high to qos requirement, and one type of business such as voice is very high to qos requirement; But because there is not QoS to distinguish mechanism; In the time of inadequate resource, more than two types of business but obtained same bandwidth (on the statistics), it is enough professional that such bandwidth is downloaded this type BE to data; But such bandwidth possibly can't satisfy professional requirements such as voice, causes voice one type of traffic transmission quality extreme difference even service fail.
Summary of the invention
The technical problem that the present invention will solve proposes a kind of method and system of the QoS of realization control, to realize guaranteeing corresponding QoS to different service.
In order to address the above problem, the present invention provides a kind of method that realizes service quality control, comprising:
Security gateway (SeGW) reports the fixed network network element through second network element with Internet Protocol Security (IPsec) tunnel information of down direction and the correspondence relationship information between the IP traffic information; The SeGW or first network element report the fixed network network element through second network element with the IPsec tunnel information of up direction and the correspondence relationship information between the IP traffic information, carry out service quality (QoS) control by the fixed network network element;
Wherein, said first network element is evolution Home eNodeB (HeNB), and second network element is evolution Home eNodeB policing feature (HeNB PF); Perhaps, said first network element is Home eNodeB (HNB), and second network element is Home eNodeB policing feature (HNB PF).
Preferably, said method has following characteristics:
Through second network element IPsec tunnel information of down direction and the correspondence relationship information between the IP traffic information are reported the fixed network network element at SeGW; The SeGW or first network element report the IPsec tunnel information of up direction and the correspondence relationship information between the IP traffic information before the fixed network network element through second network element, and said method also comprises:
Set up the IPsec tunnel more than between first network element and the SeGW.
Preferably, said method has following characteristics:
Adopt static or dynamic mode between first network element and the SeGW, set up the IPsec tunnel.
Preferably, said method has following characteristics:
Before the correspondence relationship information with down direction and up direction reported the fixed network network element, said method also comprised:
Said first network element and/or SeGW receive the IP traffic information that issues from core net, set up the corresponding relation between IPsec tunnel information and the IP traffic information.
Preferably, said method has following characteristics:
Said IPsec tunnel information is Security Parameter Index (SPI) or differentiated services code points (DSCP) information;
Said IP traffic information is one or more in the following information: five-tuple information, Tunnel End Point Identifier (TEID), radio bearer sign (RB-ID), QoS rule, traffic flow template (TFT) or packet filtering (PF); Wherein, Five-tuple information comprises source address, destination address, the information of source port number, destination slogan and protocol number.
Preferably, said method has following characteristics:
The said correspondence relationship information that the fixed network network element receives is the correspondence relationship information between SPI and the QoS rule.
Preferably, said method has following characteristics:
Said fixed network network element is carried out QoS control and is meant: the fixed network network element guarantees for transmits data packets provides the QoS that distinguishes grade according to different SPI and corresponding QoS rule thereof.
Preferably, said method also comprises:
Said first network element is according to RB-ID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of up direction, mapping or filtration upstream data;
Said SeGW is according to TEID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of down direction, mapping or filtration downlink data.
Preferably, said method has following characteristics:
The fixed network network element that receives the correspondence relationship information between said IPsec tunnel information and the IP traffic information is a broadband forum policy control functions (BPCF); By said BPCF is that the transmission data provide the QoS that distinguishes grade to guarantee, perhaps said BPCF and fixed network network element wideband network gateway (BNG) or Broadband Remote Access Server (BRAS) guarantee for the transmission data provide the QoS that distinguishes grade.
Preferably, said method has following characteristics:
Report in the step of fixed network network element through IPsec tunnel information and correspondence relationship information IP traffic information between of second network element with down direction at SeGW, said SeGW sends to second network element through notification request message with said correspondence relationship information; Said second network element sends to the fixed network network element through S9* interface session message with said correspondence relationship information;
Report in the step of fixed network network element through IPsec tunnel information and correspondence relationship information IP traffic information between of second network element at the SeGW or first network element up direction; Said SeGW sends to second network element through notification request message with said correspondence relationship information; Perhaps, said first network element sends to second network element through resource request message or resource modifying request message with said correspondence relationship information; Said second network element sends to the fixed network network element through S9* interface session message with said correspondence relationship information.
The technical problem that the present invention will solve proposes a kind of system that realizes service quality control, comprising: first network element, second network element, SeGW and fixed network network element, wherein,
Said SeGW is used for through second network element IPsec tunnel information of down direction and the correspondence relationship information between the IP traffic information being reported the fixed network network element;
The said SeGW or first network element are used for through second network element IPsec tunnel information of up direction and the correspondence relationship information between the IP traffic information being reported the fixed network network element;
Said fixed network network element is used for the said correspondence relationship information according to down direction and up direction, guarantees the QoS of transmission data in the phase IPsec tunnel;
Wherein, said first network element is HeNB, and second network element is HeNB PF; Perhaps, said first network element is HNB, and second network element is HNB PF.
Preferably, said system has following characteristics:
Said first network element be further used for and SeGW between set up the IPsec tunnel more than.
Preferably, said system has following characteristics:
Said IPsec tunnel information is Security Parameter Index (SPI) or differentiated services code points (DSCP) information;
Said IP traffic information is one or more in the following information: five-tuple information, Tunnel End Point Identifier (TEID), radio bearer sign (RB-ID), QoS rule, traffic flow template (TFT) or packet filtering (PF); Wherein, Five-tuple information comprises source address, destination address, the information of source port number, destination slogan and protocol number.
Preferably, said system has following characteristics:
Said first network element is further used for according to RB-ID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of up direction, mapping or filtration upstream data;
Said SeGW is according to TEID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of down direction, mapping or filtration downlink data.
The present invention can guarantee the terminal when HeNB/HNB inserts, and different service is realized that QoS distinguishes, and the business high to qos requirement preferentially satisfies its QoS demand, improves user experience.
Description of drawings
Fig. 1 is the configuration diagram that inserts EPS according to the HeNB of correlation technique;
Fig. 2 is the configuration diagram that inserts UMTS according to the HNB of correlation technique;
Fig. 3 sets up a plurality of SA for static state of the present invention and realizes the schematic flow sheet of QoS control;
Fig. 4 is the schematic flow sheet of dynamically setting up a plurality of SA and realizing QoS control of the present invention;
Fig. 5 is a up mapping relations structural representation of the present invention;
Fig. 6 is a descending mapping relations structural representation of the present invention;
Fig. 7 is a up-downgoing filter structure schematic representation of the present invention;
Fig. 8 is the embodiment of the invention one flow chart (SeGW resolves S1/Iuh message, based on the T1-T2 framework);
Fig. 9 is instance two flow charts (SeGW resolves S1/Iuh message, based on the T1-T3 framework) for the present invention;
Figure 10 is the embodiment of the invention three flow charts (SeGW does not resolve S1/Iuh message, based on the T1-T2 framework);
Figure 11 is the embodiment of the invention four flow charts (SeGW does not resolve S1/Iuh message, based on the T1-T2 framework).
Embodiment
In prior art; Different service can't guarantee the problem of the QoS that it needs for it to its characteristic; The most directly solution is set up many IPsec tunnels exactly between HeNB/HNB and SeGW, and different IPsec tunnel transmission different service is to reach the purpose of treating of differentiation.
In the prior art; Ipsec tunnel/SA (Security Association; Security Association) the process of setting up is: between two network elements, carry out IKEv2 (Internet Key exchange; Internet Key Exchange) initialization is consulted, and sets up an IKE_SA, can set up a plurality of sub-SA (Child_SA) afterwards.Each SA (comprising sub-SA) is unidirectional, and each SA has a specific SPI (Security Parameter Index, Security Parameter Index) sign.Because SA is unidirectional, so its sign SPI also is divided into the SPI of uplink and downlink.In the current HeNB/HNB system, only support single ipsec tunnel (a pair of SA), also do not support many IPsec tunnel (many) SA.
Basic thought of the present invention is: it is right that HeNB/HNB and SeGW set up a plurality of ipsec tunnel/SA, different IPsec tunnel/SA to by different SPI (to) sign, by fixed network according to SPI (to) provide different QoS to guarantee.
Particularly, comprising: set up the IPsec tunnel more than between first network element and the SeGW;
SeGW reports the fixed network network element through second network element with the IPsec tunnel information of down direction and the correspondence relationship information between the IP traffic information, and the SeGW or first network element report the fixed network network element through second network element with the IPsec tunnel information of up direction and the correspondence relationship information between the IP traffic information; Carry out QoS control by the fixed network network element.
Wherein, said first network element is HeNB, and second network element is HeNB PF; Perhaps, said first network element is HNB, and second network element is HNB PF.
Can adopt static or dynamic mode between first network element and the SeGW, set up the IPsec tunnel.
Issue through core net, first network element and/or SeGW obtain IP traffic information, and then set up the corresponding relation between IPsec tunnel information and the IP traffic information.
The IPsec tunnel information can be SPI or DSCP information;
Said IP traffic information is one or more in the following information: five-tuple information, TEID (Tunnel End Point Identifier; Tunnel End Point Identifier), RB-ID (sign of radio bearer), QoS rule, TFT or PF; Wherein, Five-tuple information comprises source address, destination address, the information of source port number, destination slogan and protocol number.
In a concrete embodiment, the correspondence relationship information that sends to the fixed network network element is the correspondence relationship information between SPI and the QoS rule.After IPsec tunnel/SA set up and generates, the HeNB/HNB subsystem reported the fixed network network element with the corresponding relation of SPI and QoS, and the fixed network network element guarantees for transmits data packets provides the QoS that distinguishes grade according to different SPI and corresponding QoS rule thereof.
Said first network element is according to RB-ID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of up direction, mapping or filtration upstream data;
Said SeGW is according to TEID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of down direction, mapping or filtration downlink data.
The fixed network network element of the correspondence relationship information between said Psec tunnel information of above-mentioned reception and the IP traffic information can be BPCF (Broadband Forum Policy Control Function; Broadband forum policy control functions); By said BPCF is that the transmission data provide the QoS that distinguishes grade to guarantee; Perhaps said BPCF and other fixed network network elements guarantee for the transmission data provide the QoS that distinguishes grade such as BNG/BRAS (Broadband Network Gateway wideband network gateway/Broadband Remote Access Server Broadband Remote Access Server).
In addition; Report in the step of fixed network network element through IPsec tunnel information and correspondence relationship information IP traffic information between of second network element with down direction at SeGW, said SeGW sends to second network element through notification request message with said correspondence relationship information; Said second network element sends to the fixed network network element through S9* interface session message with said correspondence relationship information;
Report in the step of fixed network network element through IPsec tunnel information and correspondence relationship information IP traffic information between of second network element at the SeGW or first network element up direction; Said SeGW sends to second network element through notification request message with said correspondence relationship information; Perhaps, said first network element sends to second network element through resource request message or resource modifying request message with said correspondence relationship information; Said second network element sends to the fixed network network element through S9* interface session message with said correspondence relationship information.
Wherein, the S9* interface refers to the S9 interface revising or strengthen.
Correspondingly, the system of the realization service quality of embodiment of the invention control, comprising: first network element, second network element, SeGW and fixed network network element, it is realized as stated.
Discuss in the face of key technology of the present invention down
(1) establishment of ipsec tunnel/SA (static state)
In this scene, after HeNB/HNB powers on, just with disposable a plurality of (such as m) the IPsec tunnel of setting up of SeGW, the QoS rule scope that each tunnel is corresponding different, the SA of the corresponding up-downgoing in each tunnel, corresponding its SPI separately of each SA, corresponding diagram 3.
M different IPsec passage, according to certain prioritize, when user data arrives, according to the order of priority packet toward the last mapping of IPsec tunnel/SA/coupling, shine upon/match on which tunnel, just use which tunnel transmission.
As a kind of concrete realization, an IPsec tunnel that priority is minimum can be set, the business of serving the professional of BE (Best Effort does one's best) or can not shine upon/mate.That is to say: M-1 all corresponding specific QoS in tunnel or QoS scope, this M-1 tunnel is called " proprietary tunnel ", and an IPsec tunnel does not have specific qos requirement, is called " acquiescence/default tunnel ".After user data arrives; Mapping/coupling on this M tunnel one by one; Shine upon/match on which tunnel; Just use which tunnel transmission, if preceding M-1 IPsec tunnel all is not suitable for transmitting certain business or do not have specific qos requirement to be engaged in to this business at all, the quilt that this business can be given tacit consent to shines upon/matches on " acquiescence/default tunnel ".
As a kind of specific implementation; Selected specific tunnel (generally speaking from M tunnel; The priority and the qos requirement in this tunnel are the highest) as " signaling tunnel "; All all pass through this specific " signaling tunnel " transmission through the 3GPP chain of command signaling of IPsec channel transfer.
If when having " signaling tunnel ", the signaling tunnel has precedence over other tunnels and sets up, and after the HeNB/HNB access authentication, just sets up the signaling tunnel that is:, for transmitting register command or the service of other chain of command signalings that follow-up HeNB mails to other networks.
The foundation in tunnel can be initiated by HeNB/HNB or SeGW.Different IPsec tunnels can be IPsec tunnel independently, also can be the many ipsec tunnels/sub-SA (Child-SA) that belongs to gang.
(2) establishment of ipsec tunnel/SA (dynamically)
In this scene; After certain user has S1/Iuh interface message (for example: adhere to/request of PDN connection foundation/carrying foundation/bearing modification) to arrive; When requiring specific QoS rule; HeNB/HNB/SeGW is according to dependency rule, determine this QoS need to set up/revise/to delete proprietary SA/IPsec tunnel be its guaranteed qos.That is, this scheme is different to be with (one) part, is not that HeNB sets up many IPsec tunnels that QoS is different when powering on, but in the time of the specific QoS demand of business, determines newly-built ipsec tunnel again.Referring to Fig. 4.
Similar (one), the QoS scope that each IPsec tunnel is corresponding different, corresponding its SPI separately of the SA in each IPsec tunnel.
As a kind of concrete realization, can when powering on, set up one " acquiescence/default tunnel " at HeNB/HNB, this tunnel service is in BE business professional or that all can't shine upon/mate when all proprietary IPsec tunnels.
As a kind of concrete realization; Can when powering on, set up a specific tunnel (generally speaking at HeNB/HNB; The priority and the qos requirement in this tunnel are the highest) as " signaling tunnel "; All all pass through this specific " signaling tunnel " transmission through the 3GPP chain of command signaling of IPsec channel transfer.
If when having " signaling tunnel "; The signaling tunnel has precedence over other tunnels and sets up; That is: after the HeNB/HNB access authentication, just set up the signaling tunnel, for transmitting register command or the service of other chain of command signalings that follow-up HeNB/HNB mails to other networks.
The foundation in tunnel can be initiated by HeNB/HNB or SeGW.Different IPsec tunnels can be IPsec tunnel independently, also can be the many ipsec tunnels/sub-SA (Child-SA) that belongs to gang.
(3) mapping table/structure of filter
HeNB/HNB has upstream data mapping table/filter as an end points in IPsec tunnel, and the effect of this mapping table/filter is packet (up) to be shone upon/match suitable IPsec tunnel get on.This structure of filter is as shown in Figure 5.Among the figure, there are perhaps many-to-one one to one relation in radio bearer and QoS scope, and there is man-to-man relation in the up SA (SPI) in QoS scope and IPsec tunnel.Like this, the sign (use RB-ID at this, Radio Bearer Identity identifies) of radio bearer and the corresponding relation of SPI have just been set up.
Radio bearer and QoS scope, and radio bearer and up SA/SPI concern one to one maybe the corresponding same SPI (as shown in Figure 5) of a plurality of RB-ID, otherwise perhaps.This depends on the thickness of the granularity that the QoS in QoS and the IPsec tunnel of radio bearer distinguishes.But QoS scope and SPI concern one to one.Following SeGW roughly the same.
SeGW has downlink data mapping table/filter as the another one end points in IPsec tunnel, and the effect of this mapping table/filter is packet (descending) to be shone upon/match suitable IPsec tunnel get on.This mapping table/structure of filter is as shown in Figure 6.Among the figure, S1/Iuh carries (belonging to GTP carries) and there is perhaps many-to-one one to one relation in the QoS scope, and there are man-to-man relation in QoS scope and IPsec tunnel/SPI.The sign TEID of S1/Iuh carrying and the perhaps many-to-one one to one relation of SPI like this, have just been set up.
Mapping table/filter can also have other a kind of structure (being called structure two at this); Be different from above-mentioned RB-ID or TEID and SPI and set up many-one or man-to-man corresponding relation (said structure is called structure one), but the five-tuple of packet (source address of packet, destination address, source port number, destination slogan, protocol number) is set up and the perhaps many-to-one one to one corresponding relation of SPI.As shown in Figure 7.Mapping table/the filter of structure two both can be used for also can being used for HeNB/HNB on the SeGW, and just corresponding QoS scope, SPI, five-tuple are respectively descending, up getting final product.
(4) generation of mapping table/filter
In the EPS/UMTS system; The terminal is inserted EPS/UMTS, or is set up PDN and connect, or initiates that dedicated bearing is set up or network side is initiated dedicated bearing and set up; The network element MME/SGSN that last operation all can be summed up in the point that the EPS/UMTS network sends message on the S1/Iuh interface (set up ask/adhere to acceptances/carryings to set up request/PDN to connect acceptance such as: initial context) to HeNB/HNB, has carried the QoS (except the default bearing) regular (also possibly comprise five-tuple information) of carrying in this message.According to prior art, according to this QoS that carries decision modification/establishment/deletion radio bearer (RB), just there has been corresponding relation in HeNB/HNB between this QoS and the radio bearer after receiving this message.In this invention, HeNB/HNB can find corresponding ipsec tunnel corresponding " QoS scope " according to this QoS, has so just set up the corresponding relation of the SA sign SPI of this QoS and ipsec tunnel.So, the QoS of the sign of radio bearer, carrying and SPI have just set up corresponding relation.This corresponding relation is exactly the mapping table/filter of this carrying.Certainly, different carry different carrying mapping table/filters, the mapping table/filter on the different terminal is also different.
When if SeGW intercepts and captures S1/Iuh message; SeGW has obtained QoS (except the default bearing) rule and the bearing identification TEID (perhaps five-tuple information) that carry after the message of intercepting and capturing on the S1/Iuh interface (for example: initial context is set up and asked/adhere to acceptance/carrying to set up request/PDN connection acceptance).SeGW can find corresponding ipsec tunnel corresponding " QoS scope " according to this QoS, has so just set up the corresponding relation of the descending SA sign SPI of this QoS and ipsec tunnel.Thereby set up TEID, the QoS of carrying and the corresponding relation of SPI, this corresponding relation is exactly the mapping table/filter of this carrying.Certainly, different carry different carrying mapping table/filters, the mapping table/filter on the different terminal is also different.
When if SeGW does not does not intercept and capture S1/Iuh message, descending mapping table/filter can entrust other network elements to generate, such as HeNB/HNB PF or HeNB/HNB.
Equally, the last mapping table/filter of HeNB/HNB also can entrust other network elements to generate, such as SeGW, HeNB/HNB PF etc.Concrete implementation is depended in concrete operation, in the flow implementation example of back, can make referrals to.
For other a kind of form of mapping table/filter, carried the five-tuple information and the QoS information of this business data packet in S1/Iuh message (for example: initial context is set up and asked/adhere to acceptance/carrying the to set up request/PDN connection acceptance) message.Therefore SeGW and HeNB can set up the corresponding relation of five-tuple, QoS and SPI, and this correspondence just can be used as the filter of this carrying.
(5) application of mapping table/filter
According to (four), the last mapping table/filter of HeNB/HNB/SeGW is: the corresponding relation of the sign/TEID of radio bearer, the QoS of carrying and SPI.So after HeNB/HNB obtained upstream data from radio bearer, the RB-ID that belongs to radio bearer according to this packet just can correspondence find the IPsec tunnel, packet has been shone upon/matched in the suitable ipsec tunnel.After SeGW carried the acquisition downlink data from S1/Iuh, the TEID that carries according to this packet place S1/Iuh just can correspondence find the IPsec tunnel, packet has been shone upon/matched in the suitable ipsec tunnel.
Other a kind of form of corresponding filter, on HeNB/HNB/SeGW receives/downlink data packet after, find corresponding SPI according to the five-tuple of packet, with data packet matched in the suitable ipsec tunnel.
(6) corresponding relation reports
HeNB/HNB/SeGW is after having generated mapping relations/filter; Be used for local mapping/filtering data bag; And need the corresponding relation of QoS and SPI be reported fixed network through HeNB/HNB PF; Fixed network has been known the corresponding relation of SPI and QoS like this, could guarantee the QoS of data packets for transmission in the different ipsec tunnels.
Wherein HeNB/HNB through HeNB/HNB PF when fixed network reports " corresponding relation of SPI and QoS "; HeNB/HNB at first through the T2 interface " resource request/modification request/release request information reports HeNB/HNB PF with " corresponding relation "; HeNB/HNB PF gives the BPCF of fixed network through S9* interface session information reporting, is held according to this corresponding relation by other network elements of BPCF and fixed network and carries out the QoS control of distinguishing different brackets.
As concrete execution mode; PF is except being to fixed network reports intermediary's network element of QoS and SPI corresponding relation; Still be the intermediate NE of HeNB/HNB and SeGW intercommunication mapping relations/filter, IP traffic information under some scene, be embodied in the follow-up flow process.
In the present invention, the IPsec tunnel information is meant the identification information of this IPsec tunnel/SA of sign, such as: SPI.Also can be the information of other unique identification ipsec tunnels, such as DSCP (Differentiated Services Code Point, differentiated services code points) etc.In embodiments of the invention and key technology argumentation, generally only mentioned SPI as the IPsec tunnel information, but do not got rid of the possibility that can adopt other tunnel informations such as DSCP.That is to say that can equivalence replace to other tunnel informations such as DSCP, this scheme also can be moved, and also is content of the present invention.
IP traffic information is to describe the identification information of certain IP traffic, and policy information etc. include but not limited in the following information one or several: five-tuple (source address; Destination address; Source port number, destination slogan, protocol number), TEID, QoS rule, TFT/PF etc.
The corresponding relation of IPsec tunnel information and IP traffic information is any one IPsec tunnel information (SPI or DSCP or other) and the corresponding relation of any one or several kinds of IP traffic information (five-tuple, TEID, regular, the TFT/PF of QoS).In embodiments of the invention and key technology argumentation, the corresponding relation of SPI and QoS is a kind of typical realization.But do not get rid of the possibility that other tunnel informations such as can adopting DSCP and QoS rule and other IP traffic information are set up corresponding relation.That is to say that SPI can equivalence replace to other IPsec tunnel informations such as DSCP, the QoS rule can be of equal value replaces to other IP traffic information, thereby sets up corresponding relation, and this scheme also can be moved, and also is content of the present invention.
The flow implementation example
Embodiment one: SeGW resolves the S1/Iuh interface message, based on T1T2 framework (Fig. 8)
Step S801:UE initiates to adhere to/PDN connection foundation operation, the relevant treatment of wireless side and core net, and this is a prior art.
Step S802: the terminal is linked into after the EPS/UMTS through HeNB/HNB; No matter adhere to; Dedicated bearing that the PDN connection is set up, initiate at the terminal or that network side is initiated is set up, and finally all can send corresponding message by network side and give HeNB/HNB, and this message is GTP (the GPRS tunnel Protocol of S1/Iuh interface; GPRS Tunnel Protocol) control signaling, the message shown in figure: initial context is set up and is asked/adhere to acceptance/carrying foundation request/PDN connection to be accepted.Carried in this message to create/revise/the pairing QoS rule of carrying and the information such as up-downgoing TEID, five-tuple that discharge, also be IP traffic information.
The signaling of S1/Iuh interface is intercepted and captured by SeGW, and again S1/Iuh message is sent to HeNB/HNB after obtaining the IP traffic information in the signaling through SeGW the time.
Step S803:SeGW basis is obtained IP traffic information from GTP message, and decision is created new SA (dynamic aspect) or selected SA (dynamic perhaps static scheme) according to corresponding strategies
If create new SA, SeGW sends IKEv2 message " creating sub-SA request " and gives HeNB/HNB, and in message, has carried the SPI by the selected descending SA of SeGW.
SeGW has obtained QoS rule, TEID and/or five-tuple information from the GTP message of S1/Iuh interface, SeGW judges according to self information configured whether the QoS rule that receives needs newly-built SA or existing SA just can satisfy the demand of this QoS rule.The SPI newly-built like this or SA that selects just can set up corresponding relation with the QoS rule; And in GTP message, there are corresponding relation again in QoS rule and TEID, so TEID and SPI have just set up corresponding relation, mapping (MAPPING) concerns in other words conj.or perhaps, referring to Fig. 6.
If not the corresponding relation of setting up SPI and TEID, but set up the corresponding relation of SPI and five-tuple according to the QoS rule, then this corresponding relation is called " filter ", referring to Fig. 7.
Mapping table/the filter that on SeGW, generates is used for filtration/mapping downlink data packet, is called descending (downlink, DL) mapping table/filter.
Step S804:SeGW sends " creating sub-SA request " and gives HeNB/HNB, and in message, has carried the SPI by the selected descending SA of SeGW; After HeNB/HNB receives request, select the SPI of up SA, and send to SeGW through " creating sub-SA responds " message.
Step S805:HeNB/HNB has received S1/Iuh message, and has obtained QoS rule, TEID and/or five-tuple information wherein.
HeNB/HNB can judge according to the QoS rule which radio bearer this GTP carrying is corresponded on, has promptly set up corresponding relation (prior art) with radio bearer sign RB-ID; HeNB/HNB self information configured judges whether the QoS rule that receives needs newly-built SA or existing SA just can satisfy the demand of this QoS rule.The SPI newly-built like this or SA that selects just can set up corresponding relation with the QoS rule; RB-ID and SPI have just set up corresponding relation (mapping relations/mapping table) through the QoS rule thus, and be as shown in Figure 5.
If not the corresponding relation of setting up SPI and RB-ID, but set up the corresponding relation of SPI and five-tuple according to the QoS rule, then this corresponding relation is called " filter ", referring to Fig. 7.
Mapping table/the filter that on HeNB/HNB, generates is used for filtration/mapping uplink packet, is called up (uplink, UL) mapping table/filter.
Among the above step 803-805, there is not specific precedence relationship.It possibly be that SeGW also possibly be HeNB/HNB that the foundation of sub-SA is initiated, and the up-downgoing SA that sets up of a pair of IKEv2 message maybe but may not necessarily serve the up-downgoing data flow in the same carrying.After the QoS rule of finding newly to receive as SeGW or HeNB/HNB, going earlier to check has the SA that does not have " with the QoS onrelevant " among the SA that has existed, if having, just set up incidence relation with this SA; If no, then initiate newly-builtly, and set up incidence relation with it;
The above-mentioned SA that possibly have " with the QoS onrelevant " that mentions; Under several kinds of scenes this situation can appear: 1) because IKEv2 message is to send (request+response) in pairs; Therefore, the requesting party has selected SPI (corresponding SA) can set up the corresponding relation of SPI and QoS; But response side does not know the corresponding SA of the SPI of its selection should related which type of QoS, has therefore just had a SA who concerns with the QoS onrelevant.After the recipient receives QoS, just can set up this QoS and the incidence relation that is somebody's turn to do " not being related SA ".2) the EPS/UMTS core net also possibly sent the request of releasing bearing except sending newly-built carrying request, so after certain carry to discharge, and this SA idlely (has not had binding relationship with QoS).
Step S806:HeNB/HNB through the T2 interface " resource request/modification request information reports descending " SPI and QoS corresponding relation " to HeNB/HNB PF.HeNB/HNB PF replys response message to HeNB/HNB;
Step S807, SeGW pass through " notice request " message of T1 interface to HeNB/HNB PF reporting uplink " SPI and QoS corresponding relation ".HeNB/HNB PF replys response message to SeGW;
After HeNB/HNB PF receives the message in 806 steps and 807 steps; The corresponding relation that two sessions are reported does that related (the T1 session can be related with the T2 session in the prior art; Therefore according to the incidence relation of session; Can the up-downgoing that report " SPI and QoS corresponding relation " is related), and pass through the S9* interface report and give fixed network BPCF, entrusting other fixed network network elements by BPCF or BPCF is the packet guaranteed qos that is transmitted in the different IP sec tunnel.
Annotate: if the static scene of setting up SA; Can be employed in step S806 and report this " SPI and QoS corresponding relation "; Also can adopt a kind of optimal way, promptly the corresponding relation of this SPI and QoS rule can just report HeNB/HNB PF when initially having set up all SA.
Step S808:HeNB/HNB responds the GTP message of S1/Iuh interface to the EPS core net.
Embodiment two: SeGW resolves S1/Iuh message, based on T1T3 framework (Fig. 9)
Step S901:UE initiates to adhere to/PDN connection foundation operation, the relevant treatment of wireless side and core net, and this is a prior art.
Step S902: the terminal is linked into after the EPC/UMTS through HeNB/HNB; No matter adhere to; PDN connects foundation, terminal dedicated bearing that initiate or that network side is initiated is set up; Finally all can send corresponding message by network side and give HeNB/HNB, this message is the GTP control signaling of S1/Iuh interface.Message shown in promptly scheming: initial context is set up and is asked/adhere to acceptance/carrying to set up request/PDN connection acceptance; As carried in the message to create/revise/the pairing QoS rule of carrying and the information such as up-downgoing TEID, five-tuple that discharge, also be IP traffic information.
The GTP signaling of S1/Iuh interface is intercepted and captured by SeGW, and again S1/Iuh message is sent to HeNB/HNB after obtaining the IP traffic information in the signaling through SeGW the time.
Step S903:SeGW basis is obtained IP traffic information from GTP message, and decision is created new SA (dynamic aspect) or selected SA (dynamic perhaps static scheme) according to corresponding strategies
If create new SA, SeGW sends IKEv2 message " creating sub-SA request " and gives HeNB/HNB, and in message, has carried the SPI by the selected descending SA of SeGW.
SeGW has obtained QoS rule, TEID and/or five-tuple information from the GTP message of S1/Iuh interface, SeGW judges according to self information configured whether the QoS rule that receives needs newly-built SA or existing SA just can satisfy the demand of this QoS rule.The SPI newly-built like this or SA that selects just can set up corresponding relation with the QoS rule; And in GTP message, there are corresponding relation again in QoS rule and TEID, so TEID and SPI have just set up corresponding relation, mapping (MAPPING) concerns in other words conj.or perhaps, referring to Fig. 6.
If not the corresponding relation of setting up SPI and TEID, but set up the corresponding relation of SPI and five-tuple according to the QoS rule, then this corresponding relation is called " filter ", referring to Fig. 7.
Mapping table/the filter that on SeGW, generates is used to filter/shine upon downlink data packet, is called descending (downlink, DL) mapping table/filter.
Step S904:SeGW sends " creating sub-SA request " and gives HeNB/HNB, and in message, has carried the SPI by the selected descending SA of SeGW; After HeNB/HNB receives request, select the SPI of up SA, and send to SeGW through " creating sub-SA responds " message.
Step S905:SeGW will send to HeNB/HNB in the S1/Iuh message that 902 steps intercepted and captured in new SA that create or that selected.
Perhaps, may not pass through SA new establishment or that select when S1/Iuh message is sent, but in S1/Iuh message, carry the SPI of SA new establishment or that select.
Step S906:HeNB/HNB according to this S1/Iuh message from which SA just can judge this S1/Iuh message IP stream information and the corresponding relation of SA in the carrying that will set up;
Perhaps HeNB/HNB is according to the SPI that carries in the S1/Iuh message, just can judge this S1/Iuh message IP stream information and the corresponding relation of SA in the carrying that will set up.
HeNB/HNB adopts with the identical mechanism of S805 according to above-mentioned relation and generates upstream data MAPPING table.
Step S907: because obtained the S1/Iuh message content at 902 step SeGW, and set up SA in 904 steps, obtained corresponding SPI, SeGW generates descending MAPPING table;
Step S908: according to aforesaid operations, SeGW can generate the corresponding relation of up-downgoing QoS rule and SPI simultaneously, and reports HeNB/HNB PF through notification request message.
SeGW reports up-downgoing " SPI and QoS corresponding relation " through " notice request " message of T1 interface to HeNB/HNB PF.HeNB/HNB PF replys response message to SeGW;
HeNB/HNB PF gives fixed network BPCF through the S9* interface report, and entrusting other fixed network network elements by BPCF or BPCF is the packet guaranteed qos that is transmitted in the different IP sec tunnel.
Annotate: if the static scene of setting up SA can be employed in step S908 and report this corresponding relation, also can adopt a kind of optimal way, promptly the corresponding relation of this SPI and QoS rule can just report PF when initially having set up all SA.
Step S909:HeNB/HNB responds the GTP message of S1/Iuh interface to the EPS core net.
Embodiment three: SeGW does not resolve S1/Iuh message, based on T1T2 framework (Figure 10)
Step S1001:UE initiates to adhere to/PDN connection foundation operation, the relevant treatment of wireless side and core net, and this is a prior art.
Step S1002: the terminal is linked into after the EPS/UMTS through HeNB/HNB; No matter adhere to; PDN connects foundation, terminal dedicated bearing that initiate or that network side is initiated is set up; Finally all can send corresponding message by network side and give HeNB/HNB, this message is the GTP control signaling of S1/Iuh interface.Message shown in promptly scheming: initial context is set up and is asked/adhere to acceptance/carrying to set up request/PDN connection acceptance; As carried in the message to create/revise/the pairing QoS rule of carrying and the information such as up-downgoing TEID, five-tuple that discharge, also be IP traffic information.
Step S1003:HeNB/HNB basis is obtained relevant information from GTP message, and decision is created new SA (dynamic aspect) or selected SA (dynamic perhaps static scheme) according to corresponding strategies
If create new SA, HeNB/HNB sends IKEv2 message " creating sub-SA request " and gives SeGW, and in message, has carried the SPI by the selected up SA of HeNB/HNB.
HeNB/HNB has obtained QoS rule, TEID and/or five-tuple information from the GTP message of S1/Iuh interface; HeNB/HNB can judge according to the QoS rule which radio bearer this GTP carrying is corresponded on, has promptly set up corresponding relation (prior art) with radio bearer sign RB-ID; HeNB/HNB self information configured judges whether the QoS rule that receives needs newly-built SA or existing SA just can satisfy the demand of this QoS rule.The SPI newly-built like this or SA that selects just can set up corresponding relation with the QoS rule; RB-ID and SPI have just set up corresponding relation (mapping relations/mapping table) through the QoS rule thus, and be as shown in Figure 5.
If not the corresponding relation of setting up SPI and RB-ID, but set up the corresponding relation of SPI and five-tuple according to the QoS rule, then this corresponding relation is called " filter ", referring to Fig. 7.
Mapping table/the filter that on HeNB/HNB, generates is used for filtration/mapping uplink packet, is called up (uplink, UL) mapping table/filter.
Step S1004:HeNB/HNB sends " creating sub-SA request " and gives SeGW, and in message, has carried the SPI by the selected up SA of HeNB/HNB; After SeGW receives request, select the SPI of descending SA, and send to HeNB/HNB through " creating sub-SA responds " message.
Step S1005:HeNB/HNB is through the corresponding relation of T1 interface to HeNB/HNB PF reporting uplink SPI and QoS, and it is regular to carry descending QoS;
Step S1006:HeNB/HNB PF sends descending QoS rule to SeGW;
Step S1007, SeGW selects a SA according to descending QoS rule, and sets up the corresponding relation of SPI and QoS, promptly descending SPI and the corresponding relation of QoS.
Step 1008, SeGW reports descending SPI and the corresponding relation of QoS through the T2 interface to HeNB/HNBPF.
Behind up-downgoing SPI that HeNB/HNB PF goes on foot 1008 and 1005 steps obtained and the corresponding relation of QoS; Corresponding relation to two sessions report is made related (prior art; Same Fig. 8); And pass through the S9* interface report and give fixed network BPCF, entrusting other fixed network network elements by BPCF or BPCF is the packet guaranteed qos that is transmitted in the different IP sec tunnel.
Step S1009:HeNB/HNB responds the GTP message of S1/Iuh interface to the EPS core net.
Embodiment four: SeGW does not resolve S1/Iuh message, based on T1T2 framework (Figure 11)
Step S1101:UE initiates to adhere to/PDN connection foundation operation, the relevant treatment of wireless side and core net, and this is a prior art.
Step S1102: the terminal is linked into after the EPS/UMTS through HeNB/HNB; No matter adhere to; PDN connects foundation, terminal dedicated bearing that initiate or that network side is initiated is set up; Finally all can send corresponding message by network side and give HeNB/HNB, this message is the GTP control signaling of S1/Iuh interface.Message shown in promptly scheming: initial context is set up and is asked/adhere to acceptance/carrying to set up request/PDN connection acceptance; As carried in the message to create/revise/the pairing QoS rule of carrying and the information such as up-downgoing TEID, five-tuple that discharge, also be IP traffic information.
Step S1103:HeNB/HNB basis is obtained relevant information from GTP message, and decision is created new SA (dynamic aspect) or selected SA (dynamic perhaps static scheme) according to corresponding strategies
If create new SA, HeNB/HNB sends IKEv2 message " creating sub-SA request " and gives SeGW, and in message, has carried the SPI by the selected up SA of HeNB/HNB.
HeNB/HNB has obtained QoS rule, TEID and/or five-tuple information from the GTP message of S1/Iuh interface; HeNB/HNB can judge according to the QoS rule which radio bearer this GTP carrying is corresponded on, has promptly set up corresponding relation (prior art) with radio bearer sign RB-ID; HeNB/HNB self information configured judges whether the QoS rule that receives needs newly-built SA or existing SA just can satisfy the demand of this QoS rule.The SPI newly-built like this or SA that selects just can set up corresponding relation with the QoS rule; RB-ID and SPI have just set up corresponding relation (mapping relations/mapping table) through the QoS rule thus, and be as shown in Figure 5.
If not the corresponding relation of setting up SPI and RB-ID, but set up the corresponding relation of SPI and five-tuple according to the QoS rule, then this corresponding relation is called " filter ", referring to Fig. 7.
Mapping table/the filter that on HeNB/HNB, generates is used for filtration/mapping uplink packet, is called up (uplink, UL) mapping table/filter.
Step S1104:HeNB/HNB sends " creating sub-SA request " and gives SeGW, and in message, has carried the SPI by the selected up SA of HeNB/HNB; After SeGW receives request, select the SPI of descending SA, and send to HeNB/HNB through " creating sub-SA responds " message.
Step S1105: after S1104 step, HeNB/HNB can obtain the SPI of descending SA, and HeNB/HNB obtained descending QoS rule, and HeNB/HNB can generate the corresponding relation of descending QoS and SPI.
HeNB/HNB through the T1 interface to HeNB/HNB PF reporting uplink and descending SPI and the corresponding relation of QoS;
Behind the corresponding relation of HeNB/HNB PF with the 1105 up-downgoing SPI that obtain of step and QoS, giving fixed network BPCF through the S9* interface report, is the packet guaranteed qos that is transmitted in the different IP sec tunnel by BPCF or other fixed network network elements of BPCF trust.
Step S1106:HeNB/HNBPF sends the corresponding relation of descending QoS rule and SPI to SeGW;
Step S1107:SeGW is regular according to descending QoS, and sets up descending MAPPING table or filter.
Step 1008:HeNB/HNB responds the GTP message of S1/Iuh interface to the EPS core net.
Embodiment five:
More than be in the instance, the mapping table/filter of up-downgoing, the generation of the corresponding relation of SPI and QoS is all generated respectively by HeNB/HNB and SeGW, or has HeNB/HNB to generate up-downgoing respectively, announces to opposite end SeGW through PF intermediary.Finally report a PF at last to fixed network (T1T2 framework) corresponding relation of SPI and QoS respectively, perhaps report PF at last to fixed network (T1T3 framework) by SeGW by HeNB/HNB and SeGW.Following scheme can be done processing as described below under the flow process framework of previous embodiment, form new embodiment.
1) as other a kind of implementation to the T1T3 framework; SeGW and HeNB/HNB can generate mapping table/filter and " corresponding relation of SPI and QoS " separately respectively; HeNB/HNB sends to SeGW with up " corresponding relation of SPI and QoS " through the IKEv2 message of expanding, and reports PF at last to fixed network by SeGW through the T1 interface.
2) be directed against the situation that SeGW does not resolve S1/Iuh message, HeNB/HNB can obtain the content of S1/Iuh message, and sends to SeGW through the IKEv2 message of expansion, supplies SeGW to generate the corresponding relation of descending mapping table/filter and descending SPI and QoS.
3) as a kind of concrete realization; When HeNB/HNB has generated up " corresponding relation of SPI and QoS " but (the T1T3 framework that can't on PF is direct, give the correct time; No T2 interface), SeGW can obtain up " corresponding relation of SPI and QoS " based on " reflection is penetrated " upstream data.After SeGW has generated/obtained up " corresponding relation of SPI and QoS ", but can't announce HeNB/HNB, HeNB/HNB can obtain up " corresponding relation of SPI and QoS " based on " reflection is penetrated " downlink data system.That is to say that SeGW and HeNB/HNB can consult " corresponding relation of SPI and QoS " through the reflection mechanism of penetrating.
Described reflection is penetrated and is meant: after SeGW or HeNB/HNB receive the packet of opposite end (HeNB/HNB or SeGW); SPI with the outer IPSec head that encapsulates of this packet goes to search and its paired SPI that produces; As reverse SPI; Packet corresponding QoS rule, TEID, information such as five-tuple are done reverse process: on/descending QoS/TEID is mapped as down/up QoS/TEID, and the source/destination address in the five-tuple information/port numbers exchanges.The rule of the QoS after SPI that finds and the reverse process, TEID, information such as five-tuple are done related afterwards, and above-mentioned is exactly that mechanism is penetrated in reflection.Through in such operation, just can generate " mapping table/filter " and " corresponding relation of SPI and QoS " of opposite end.
One of ordinary skill in the art will appreciate that all or part of step in the said method can instruct related hardware to accomplish through program, said program can be stored in the computer-readable recording medium, like read-only memory, disk or CD etc.Alternatively, all or part of step of the foregoing description also can use one or more integrated circuits to realize, correspondingly, each the module/unit in the foregoing description can adopt the form of hardware to realize, also can adopt the form of software function module to realize.The present invention is not restricted to the combination of the hardware and software of any particular form.
The above is merely the preferred embodiments of the present invention, is not limited to the present invention, and for a person skilled in the art, the present invention can have various changes and variation.All within spirit of the present invention and principle, any modification of being done, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (14)
1. method that realizes service quality control comprises:
Security gateway (SeGW) reports the fixed network network element through second network element with Internet Protocol Security (IPsec) tunnel information of down direction and the correspondence relationship information between the IP traffic information; The SeGW or first network element report the fixed network network element through second network element with the IPsec tunnel information of up direction and the correspondence relationship information between the IP traffic information, carry out service quality (QoS) control by the fixed network network element;
Wherein, said first network element is evolution Home eNodeB (HeNB), and second network element is evolution Home eNodeB policing feature (HeNB PF); Perhaps, said first network element is Home eNodeB (HNB), and second network element is Home eNodeB policing feature (HNB PF).
2. method according to claim 1 is characterized in that,
Through second network element IPsec tunnel information of down direction and the correspondence relationship information between the IP traffic information are reported the fixed network network element at SeGW; The SeGW or first network element report the IPsec tunnel information of up direction and the correspondence relationship information between the IP traffic information before the fixed network network element through second network element, and said method also comprises:
Set up the IPsec tunnel more than between first network element and the SeGW.
3. like the said method of claim 2, it is characterized in that,
Adopt static or dynamic mode between first network element and the SeGW, set up the IPsec tunnel.
4. like any said method in the claim 1~3, it is characterized in that,
Before the correspondence relationship information with down direction and up direction reported the fixed network network element, said method also comprised:
Said first network element and/or SeGW receive the IP traffic information that issues from core net, set up the corresponding relation between IPsec tunnel information and the IP traffic information.
5. like any said method in the claim 1~3, it is characterized in that,
Said IPsec tunnel information is Security Parameter Index (SPI) or differentiated services code points (DSCP) information;
Said IP traffic information is one or more in the following information: five-tuple information, Tunnel End Point Identifier (TEID), radio bearer sign (RB-ID), QoS rule, traffic flow template (TFT) or packet filtering (PF); Wherein, Five-tuple information comprises source address, destination address, the information of source port number, destination slogan and protocol number.
6. like the said method of claim 5, it is characterized in that,
The said correspondence relationship information that the fixed network network element receives is the correspondence relationship information between SPI and the QoS rule.
7. like the said method of claim 6, it is characterized in that,
Said fixed network network element is carried out QoS control and is meant: the fixed network network element guarantees for transmits data packets provides the QoS that distinguishes grade according to different SPI and corresponding QoS rule thereof.
8. like any said method in the claim 1~3, it is characterized in that said method also comprises:
Said first network element is according to RB-ID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of up direction, mapping or filtration upstream data;
Said SeGW is according to TEID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of down direction, mapping or filtration downlink data.
9. like any described method in the claim 1~3, it is characterized in that,
The fixed network network element that receives the correspondence relationship information between said IPsec tunnel information and the IP traffic information is a broadband forum policy control functions (BPCF); By said BPCF is that the transmission data provide the QoS that distinguishes grade to guarantee, perhaps said BPCF and fixed network network element wideband network gateway (BNG) or Broadband Remote Access Server (BRAS) guarantee for the transmission data provide the QoS that distinguishes grade.
10. like any described method in the claim 1~3, it is characterized in that,
Report in the step of fixed network network element through IPsec tunnel information and correspondence relationship information IP traffic information between of second network element with down direction at SeGW, said SeGW sends to second network element through notification request message with said correspondence relationship information; Said second network element sends to the fixed network network element through S9* interface session message with said correspondence relationship information;
Report in the step of fixed network network element through IPsec tunnel information and correspondence relationship information IP traffic information between of second network element at the SeGW or first network element up direction; Said SeGW sends to second network element through notification request message with said correspondence relationship information; Perhaps, said first network element sends to second network element through resource request message or resource modifying request message with said correspondence relationship information; Said second network element sends to the fixed network network element through S9* interface session message with said correspondence relationship information.
11. a system that realizes service quality control is characterized in that, comprising: first network element, second network element, SeGW and fixed network network element, wherein,
Said SeGW is used for through second network element IPsec tunnel information of down direction and the correspondence relationship information between the IP traffic information being reported the fixed network network element;
The said SeGW or first network element are used for through second network element IPsec tunnel information of up direction and the correspondence relationship information between the IP traffic information being reported the fixed network network element;
Said fixed network network element is used for the said correspondence relationship information according to down direction and up direction, guarantees the QoS of transmission data in the phase IPsec tunnel;
Wherein, said first network element is HeNB, and second network element is HeNB PF; Perhaps, said first network element is HNB, and second network element is HNB PF.
12. system as claimed in claim 11 is characterized in that,
Said first network element be further used for and SeGW between set up the IPsec tunnel more than.
13. like claim 11 or 12 described systems, it is characterized in that,
Said IPsec tunnel information is Security Parameter Index (SPI) or differentiated services code points (DSCP) information;
Said IP traffic information is one or more in the following information: five-tuple information, Tunnel End Point Identifier (TEID), radio bearer sign (RB-ID), QoS rule, traffic flow template (TFT) or packet filtering (PF); Wherein, Five-tuple information comprises source address, destination address, the information of source port number, destination slogan and protocol number.
14. like claim 11 or 12 described systems, it is characterized in that,
Said first network element is further used for according to RB-ID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of up direction, mapping or filtration upstream data;
Said SeGW is according to TEID or five-tuple information and QoS information, and the corresponding relation between QoS information and the SPI is created the mapping table or the filter of down direction, mapping or filtration downlink data.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010105476317A CN102469087A (en) | 2010-11-17 | 2010-11-17 | Method and system for realizing control of quality of service, |
| PCT/CN2011/081246 WO2012065499A1 (en) | 2010-11-17 | 2011-10-25 | Method and system for realizing service quality control |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010105476317A CN102469087A (en) | 2010-11-17 | 2010-11-17 | Method and system for realizing control of quality of service, |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102469087A true CN102469087A (en) | 2012-05-23 |
Family
ID=46072261
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010105476317A Pending CN102469087A (en) | 2010-11-17 | 2010-11-17 | Method and system for realizing control of quality of service, |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN102469087A (en) |
| WO (1) | WO2012065499A1 (en) |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102572932A (en) * | 2010-12-14 | 2012-07-11 | 中兴通讯股份有限公司 | Method and system for achieving domestic base station network source differentiated management and control |
| CN103475598A (en) * | 2013-08-23 | 2013-12-25 | 天津汉柏汉安信息技术有限公司 | Method for partitioning user priorities through SPI (serial peripheral interface) |
| CN103906146A (en) * | 2012-12-27 | 2014-07-02 | 中兴通讯股份有限公司 | Method for QoS alignment between WLAN and packet core network |
| WO2014183716A1 (en) * | 2013-11-11 | 2014-11-20 | 中兴通讯股份有限公司 | Strategy control method and device, gateway device and storage medium |
| CN104283812A (en) * | 2013-07-08 | 2015-01-14 | 中国电信股份有限公司 | Method and system for identifying access bandwidth of user |
| CN106982427A (en) * | 2017-04-14 | 2017-07-25 | 北京佰才邦技术有限公司 | Connect method for building up and device |
| WO2017177753A1 (en) * | 2016-04-11 | 2017-10-19 | 中兴通讯股份有限公司 | Flow-based bearer management method, and data transmission method and device |
| CN108471629A (en) * | 2017-02-23 | 2018-08-31 | 华为技术有限公司 | The control method of business service quality, equipment and system in transmission network |
| CN109379391A (en) * | 2018-12-25 | 2019-02-22 | 北京物芯科技有限责任公司 | A kind of communication means based on IPSec, device, equipment and storage medium |
| CN109792434A (en) * | 2016-10-10 | 2019-05-21 | 华为技术有限公司 | A kind of communication means, security node network element and terminal |
| CN111436081A (en) * | 2019-03-06 | 2020-07-21 | 维沃移动通信有限公司 | Data transmission guaranteeing method and communication equipment |
| CN111586885A (en) * | 2019-02-15 | 2020-08-25 | 华为技术有限公司 | Method and device for establishing bearing and readable storage medium |
| CN113038526A (en) * | 2016-10-11 | 2021-06-25 | 华为技术有限公司 | Data transmission method and device |
| RU2781146C1 (en) * | 2018-12-14 | 2022-10-06 | Виво Мобайл Комьюникэйшн Ко., Лтд. | Method for data transmission and communication apparatus |
| WO2023273514A1 (en) * | 2021-06-30 | 2023-01-05 | 华为技术有限公司 | Data flow transmission method and apparatus |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11792677B2 (en) * | 2021-10-22 | 2023-10-17 | Qualcomm Incorporated | Reflective quality of service for encapsulating security payload packets |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101572719A (en) * | 2008-04-30 | 2009-11-04 | 华为技术有限公司 | Policy decision-making functional entity, home gateway and method and system for controlling quality of service |
| CN101729452A (en) * | 2009-05-13 | 2010-06-09 | 中兴通讯股份有限公司 | Control system and method of home gateway strategy |
| CN101854268A (en) * | 2009-04-04 | 2010-10-06 | 华为技术有限公司 | Method, device and system of IP (Internet Protocol) network performance measurement as well as method, device and system of IP network service quality control |
-
2010
- 2010-11-17 CN CN2010105476317A patent/CN102469087A/en active Pending
-
2011
- 2011-10-25 WO PCT/CN2011/081246 patent/WO2012065499A1/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101572719A (en) * | 2008-04-30 | 2009-11-04 | 华为技术有限公司 | Policy decision-making functional entity, home gateway and method and system for controlling quality of service |
| CN101854268A (en) * | 2009-04-04 | 2010-10-06 | 华为技术有限公司 | Method, device and system of IP (Internet Protocol) network performance measurement as well as method, device and system of IP network service quality control |
| CN101729452A (en) * | 2009-05-13 | 2010-06-09 | 中兴通讯股份有限公司 | Control system and method of home gateway strategy |
Non-Patent Citations (2)
| Title |
|---|
| HUAWEI 等: ""Multiple tunnels supported in Femto access"", 《THE 3RD GENERATION PARTNERSHIP PROJECT(3GPP)》 * |
| QUALCOMM INCORPORATED: ""On the need of multiple child SAs"", 《THE 3RD GENERATION PARTNERSHIP PROJECT(3GPP)》 * |
Cited By (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102572932B (en) * | 2010-12-14 | 2015-07-22 | 中兴通讯股份有限公司 | Method and system for achieving domestic base station network source differentiated management and control |
| CN102572932A (en) * | 2010-12-14 | 2012-07-11 | 中兴通讯股份有限公司 | Method and system for achieving domestic base station network source differentiated management and control |
| CN103906146B (en) * | 2012-12-27 | 2018-08-03 | 南京中兴新软件有限责任公司 | A kind of method of QoS alignment between WLAN and packet-based core networks |
| CN103906146A (en) * | 2012-12-27 | 2014-07-02 | 中兴通讯股份有限公司 | Method for QoS alignment between WLAN and packet core network |
| CN104283812A (en) * | 2013-07-08 | 2015-01-14 | 中国电信股份有限公司 | Method and system for identifying access bandwidth of user |
| CN104283812B (en) * | 2013-07-08 | 2017-10-31 | 中国电信股份有限公司 | A kind of method and system for identifying user's access bandwidth |
| CN103475598A (en) * | 2013-08-23 | 2013-12-25 | 天津汉柏汉安信息技术有限公司 | Method for partitioning user priorities through SPI (serial peripheral interface) |
| WO2014183716A1 (en) * | 2013-11-11 | 2014-11-20 | 中兴通讯股份有限公司 | Strategy control method and device, gateway device and storage medium |
| WO2017177753A1 (en) * | 2016-04-11 | 2017-10-19 | 中兴通讯股份有限公司 | Flow-based bearer management method, and data transmission method and device |
| CN109792434B (en) * | 2016-10-10 | 2021-02-26 | 华为技术有限公司 | Communication method, security node network element and terminal |
| US10812980B2 (en) | 2016-10-10 | 2020-10-20 | Huawei Technologies Co., Ltd. | Communication method, security node network element, and terminal |
| CN109792434A (en) * | 2016-10-10 | 2019-05-21 | 华为技术有限公司 | A kind of communication means, security node network element and terminal |
| CN113038526B (en) * | 2016-10-11 | 2023-06-02 | 华为技术有限公司 | Data transmission method and device |
| US11553372B2 (en) | 2016-10-11 | 2023-01-10 | Huawei Technologies Co., Ltd. | Data transmission method and apparatus thereof |
| CN113038526A (en) * | 2016-10-11 | 2021-06-25 | 华为技术有限公司 | Data transmission method and device |
| CN108471629A (en) * | 2017-02-23 | 2018-08-31 | 华为技术有限公司 | The control method of business service quality, equipment and system in transmission network |
| CN106982427A (en) * | 2017-04-14 | 2017-07-25 | 北京佰才邦技术有限公司 | Connect method for building up and device |
| CN106982427B (en) * | 2017-04-14 | 2020-08-18 | 北京佰才邦技术有限公司 | Connection establishment method and device |
| RU2781146C1 (en) * | 2018-12-14 | 2022-10-06 | Виво Мобайл Комьюникэйшн Ко., Лтд. | Method for data transmission and communication apparatus |
| CN109379391A (en) * | 2018-12-25 | 2019-02-22 | 北京物芯科技有限责任公司 | A kind of communication means based on IPSec, device, equipment and storage medium |
| CN111586885A (en) * | 2019-02-15 | 2020-08-25 | 华为技术有限公司 | Method and device for establishing bearing and readable storage medium |
| WO2020177764A1 (en) * | 2019-03-06 | 2020-09-10 | 维沃移动通信有限公司 | Data transmission guarantee method and communication device |
| JP2022523818A (en) * | 2019-03-06 | 2022-04-26 | 維沃移動通信有限公司 | Data transmission guarantee method and communication equipment |
| EP3937540A4 (en) * | 2019-03-06 | 2022-05-04 | Vivo Mobile Communication Co., Ltd. | Data transmission guarantee method and communication device |
| CN111436081A (en) * | 2019-03-06 | 2020-07-21 | 维沃移动通信有限公司 | Data transmission guaranteeing method and communication equipment |
| JP7208411B2 (en) | 2019-03-06 | 2023-01-18 | 維沃移動通信有限公司 | Data transmission security method and communication equipment |
| WO2023273514A1 (en) * | 2021-06-30 | 2023-01-05 | 华为技术有限公司 | Data flow transmission method and apparatus |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2012065499A1 (en) | 2012-05-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102469087A (en) | Method and system for realizing control of quality of service, | |
| US20130102277A1 (en) | Communication Between MME/S4 SGSN and PCRF | |
| CN102595508B (en) | A kind of policy control method and system | |
| CN102316548A (en) | Information transmission method and system | |
| CN102143530B (en) | A kind of policy control method to the access of mobile subscriber this locality and system | |
| WO2014032289A1 (en) | Bandwidth control method, device and system | |
| CN102098653A (en) | Method and system for realizing QoS (Quality of Service) control | |
| CN103379569A (en) | Trigger method and trigger apparatus of flow migration | |
| CN107005909A (en) | Business Stream shunt method and device | |
| CN102833359A (en) | Tunnel information acquiring method, SeGW (security gateway), evolution H(e)NB (home node B)/H(e)NB | |
| Punz | Evolution of 3G networks: the concept, architecture and realization of mobile networks beyond UMTS | |
| CN102347892B (en) | A kind of method and system of acquiring user access information by network equipment | |
| CN102036219B (en) | The sending method of local connection information and device | |
| WO2014071790A1 (en) | Method, device and system for policy control of fixed-mobile convergence | |
| CN102761932B (en) | Strategy control method and system for IP flow mobility | |
| CN101605373A (en) | A kind of control method of UE to access to APN and system | |
| CN102625396A (en) | Resource-managing method and resource-managing system | |
| CN102316533B (en) | The method that in call access control, information is transmitted and acceptance control system | |
| WO2013091705A1 (en) | Methods and apparatuses for session establishment with policy control between mobile and fixed networks | |
| WO2012024997A1 (en) | Method and system for controlling service admission | |
| CN102316494B (en) | resource authorization method and system | |
| CN102572932B (en) | Method and system for achieving domestic base station network source differentiated management and control | |
| WO2011032522A1 (en) | System and method for implementing local access | |
| CN102457974B (en) | A kind of service admission control method and system | |
| CN102469530B (en) | Method and system for controlling sending rate of home NodeB uplink data |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C05 | Deemed withdrawal (patent law before 1993) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120523 |